Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
566 results
Sorted by:
05-14-2014
09:46 AM
I want to use a 'where' clause (which allows the comparison of two fields) as a pivot constraint. My original search is
index=maillog (event=SEND OR event=RECEIVE)
Which gives me all the s...
- Tags:
- constraints
- pivot
02-20-2017
07:02 AM
I have index=webserver_logs and source=security_logs and can search both in a single query:
index=webserver_logs | append [search source=security_logs]
I get a table with all events and just sele...
04-26-2018
04:03 PM
I'm trying to figure out how to build an excel-like pivot table using 3 or more columns. As example, I have this data:
customer1 project1 note1
customer1 project2
customer1 p...
10-20-2013
02:34 PM
...reate a pivot, I've discovered that I can't figure out how to filter the pivot on more than one value of a particular attribute. For example, I'd like to be able to filter my pivot down to customers t...
Show results in replies (6)
-
...ttribute in the data this should be doable. Then you could just build a pivot based on that object.
-
Unfortunately Pivot is currently limited by an inability to set up OR operations with its filters....
-
...ocumentation/Splunk/latest/Pivot/UsingthePivotvisualizationeditor#Configure_a_filter_element
-
I noticed that they have added options to pivot table filters. One that may fit here is "is in t...
-
...R, for being able to use checkboxes to drive my dashboard panel (pivot searches)
-
...ith underlying pivot search - input forms being able for the user to give several values as f...
12-12-2019
04:59 PM
I have an SPL query that produces a table output like this:
ExtractStart ExtractEnd CM CallCount
12/12/2019 4:00 12/12/2019 4:15 CM2 55
12/12/2019 4:00 12/12/2019 4:15 CE1 0
12/12/20...
09-07-2010
07:09 PM
Hi, I have a few columns of data and I would like to generate a pivot table that is similar to the one in Excel.
As an example:
Date/City/Day/Response
-----------------
09-01/New York/Monday/Y...
06-06-2014
09:04 AM
1 Karma
I have to use a root search in a pivot due to needing to join another data type. Is there a way to get _time to extract as Time? I have setup an eval in the pivot to extract the _time field but it w...
09-23-2016
11:18 AM
Hey all,
I've just encountered the pivot command for the first time and after reading through the Splunk page on it, I am still confused as to what it does. If it helps, here is my search q...
Show results in replies (5)
-
| pivot Identity_Management All_Assets count(All_Assets) AS "count" SPLITROW category AS "c...pivot.jpg (1 KB)
-
yes, exactly. Pivot does not change anything. like pie-chart, single value dashboard, pivot just c...
-
So to clarify, pivot doesn't change any of the data shown, it's just a different method to search w...
-
....3/SearchReference/Pivot
-
Thank you very much for your answer! I'm still a little confused as to what pivot does in this q...
10-08-2013
04:44 AM
I have a number of sources where I extract fields using CSV on report level.
Do pivots and datamodels only work with fields extract at transform level?
04-24-2020
02:04 PM
My problem is nearly identical to the issue listed in this past post (https://answers.splunk.com/answers/508577/pivot-not-showing-results-even-though-sampling-the.html) (not enough Karma to post l...
Labels
- Labels:
-
pivot
